Correlated alerts are not proven causation.
We built TRA-CE because security teams deserve evidence chains, not alert counts. Every finding should trace to verified source events. Every conclusion should be auditable.
A causal intelligence layer for security operations
TRA-CE ingests security events from across your infrastructure, validates ingestion quality, and builds verified causal chains using formal pattern algebra. Every link in the chain is graded: PROVABLE when it traces to a real system event, MIXED when correlated across sources, INFERRED when pattern-matched.
It sits beside your SIEM. It does not replace Splunk, Sentinel, CrowdStrike, or any existing tool. It takes their output and answers the question they cannot: why.
Four heuristics. One causal graph.
Events are linked through explicit system evidence, shared artifact correlation, MITRE ATT&CK technique progression, and temporal proximity analysis. Each heuristic produces independently graded edges. The result is a directed graph where causation is a measured property, not an assumption.
Behavioral baselines learn what normal looks like for each entity in your environment. Deviations surface as anomalies with context. Campaign detection scores MITRE stage progression across time — catching slow attackers that span days or weeks through persistent entity profiles.
Post-quantum encryption. Tenant isolation. Evidence integrity.
All data crossing trust boundaries is encrypted via Avon — our post-quantum transport layer using ML-KEM-768 + X25519 hybrid key exchange with ML-DSA-65 digital signatures. AES-256-GCM encrypts every payload. Session keys rotate every 30 seconds. FIPS 203/204 compliant — shipping today, not on a roadmap.
With multi-tenant isolation enforced at the database level, mandatory MFA, and a full audit trail, TRA-CE meets the security requirements of federal agencies and enterprise security teams alike. FedRAMP authorization and SOC 2 Type II certification are on our roadmap.
Built by security practitioners
TRA-CE is built by a small, focused team with deep experience in security operations, causal reasoning, and enterprise software. We are based in Austin, Texas.
Request a demo
See TRA-CE with a walkthrough tailored to your environment and use case.